CVE-2026-6888
Basic Information
| Severity | HIGH |
|---|---|
| Base Score | 7.2 |
| CNA | CSA |
| Published Date | 2026-05-12 23:16:24 UTC |
| Last Modified | 2026-05-13 10:35:53 UTC |
| CVE.org Link | https://www.cve.org/CVERecord?id=CVE-2026-6888 |
| NVD | https://nvd.nist.gov/vuln/detail/CVE-2026-6888 |
Description
Successful exploitation of the SQL injection vulnerability could allow a remote authenticated attacker to execute arbitrary commands via a specific interface, potentially enabling the attacker to access, modify, or delete sensitive information within the database.
Affected Products
| Vendor | Product |
|---|---|
| advantech | webaccess/scada |
| advantech | iot edge linux docker |
| advantech | ecowatch saas-composer |
| advantech | iotsuite growth linux docker |
| advantech | iot edge windows |
| advantech | iotsuite starter linux docker |
| advantech | saas composer |
| advantech | webaccess saas-composer |